CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 2CVE-2023-50070
https://notcve.org/view.php?id=CVE-2023-50070
29 Dec 2023 — Sourcecodester Customer Support System 1.0 has multiple SQL injection vulnerabilities in /customer_support/ajax.php?action=save_ticket via department_id, customer_id, and subject. Sourcecodester Customer Support System 1.0 tiene múltiples vulnerabilidades de inyección SQL en /customer_support/ajax.php?action=save_ticket a través de department_id, customer_id y subject. • https://github.com/geraldoalcantara/CVE-2023-50070 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 3CVE-2023-50071 – Customer Support System 1.0 SQL Injection
https://notcve.org/view.php?id=CVE-2023-50071
29 Dec 2023 — Sourcecodester Customer Support System 1.0 has multiple SQL injection vulnerabilities in /customer_support/ajax.php?action=save_department via id or name. Sourcecodester Customer Support System 1.0 tiene múltiples vulnerabilidades de inyección SQL en /customer_support/ajax.php?action=save_department mediante id o name. Customer Support System version 1.0 suffers from a remote SQL injection vulnerability in /customer_support/ajax.php. • https://packetstorm.news/files/id/177443 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •